Hackers Run Wild Spending BitTorrent Tracker’s Donations

[Bolt_Gundam510]

by enigmax

The SuperTorrents BitTorrent tracker has been the subject of a major security breach, with hackers donating all the site’s money to a religious group. The hackers even went as far as contacting the site’s host and canceled all of their seedboxes.

Earlier this year, the anti-piracy company MediaDefender was torn apart when its email system was compromised and hackers laid the companies secrets bare for the world to see. Some months later, the SuperTorrents (ST) BitTorrent tracker has been the victim of hackers. According to a so-called ’scene notice’ circulating at the moment, the 35,000 member site was compromised when the hackers discovered that the admin of ST used the same password on a lot of other sites, as he does on other accounts - email etc. This is the same mistake that MediaDefender made.

The notice begins:

Now this is the story all about how Ersan’s life got flipped turned upside down and I’d like to take a minute and just sit right there and tell you how Ersan became the prince of a town called bel air. This weeks source of lulz is provided free of charge via a site called supertorrents.org and the nicest Administrator you’ve ever met, Ersan.

The hackers discovered that the same password secured the site’s PayPal donations account. They claimed that due to the admin of ST making derogatory comments about a religious group, they decided to donate all the sites available donations - over $2000 - to an Internet portal dedicated to that same religion.

While the hackers said they had fun deleting and disabling some more minor accounts like the admins YouTube account, they had rather more malice in mind when they managed to get access to the admins Gmail account (same as MediaDefender again). They discovered the admin’s real name, address, age and even the car he drives. After having fun making a mess of the account, the hackers said: “At this point we just deleted his account, because maximum lulz were achieved.”

The hackers then accessed the site’s admin panel for communicating with their host: “we logged into his [hosts] account panel where he hosts the supertorrents seedboxes and canceled them.”

The hackers give an explanation of the way they compromised the site:

“This all began a few days ago. Me and some friends were scoping around supertorrents irc network, when we discovered that they had a public prechan. Upon discovering this moderate scene security problem some friends and I decided to check the security of said prebot, turns out it was not so secure. Upon rooting the box and grabbing the unsecure predb and some scripts to play with we then rainbow tabled’d his password hash”

The motives for hacking the site seem to be twofold. Many Scene members consider torrent sites to be to blame for compromising their security and there does seem to be indication that this provoked the hacking in part. Money is mentioned quite a lot, in that it seems the hackers are annoyed at the level of donations at SceneTorents, even appealing to the members to consider where their money is going.

It’s also claimed that many torrent sites are getting their releases from the same place and there suggestions that this supply to the BitTorrent community should be strangled.

No doubt the MPAA will be delighted to hear this.

Source: Torrent Freak

[Atasas]

Now thats not right! usualy hackers are the good gyus, but this is out of order!

[bearoninternet]

Mutiny! :pope:

[vin3e]

Interesting read